[crypto] Check that common name contains no NUL characters

Signed-off-by: Michael Brown <mcb30@ipxe.org>
2025-02-06 22:11:57 +00:00 · 2012-05-08 10:38:04 +01:00 · 2012-05-08 10:38:04 +01:00 · 6c8fcd4bb3
commit 6c8fcd4bb3
parent 0ad8b601dd
1 changed files with 9 additions and 0 deletions
--- a/src/crypto/x509.c
+++ b/src/crypto/x509.c
@ -575,6 +575,15 @@ static int x509_parse_common_name ( struct x509_certificate *cert, char **name,
 		if ( ! *name )
 			return -ENOMEM;
 		memcpy ( *name, name_cursor.data, name_cursor.len );
+
+		/* Check that name contains no NULs */
+		if ( strlen ( *name ) != name_cursor.len ) {
+			DBGC ( cert, "X509 %p contains malicious commonName:\n",
+			       cert );
+			DBGC_HDA ( cert, 0, raw->data, raw->len );
+			return rc;
+		}
+
 		return 0;
 	}